AWS Security ChangesHomeSearch

AWS bedrock-agentcore high security documentation change

Service: bedrock-agentcore · 2026-03-19 · Security-related high

File: bedrock-agentcore/latest/devguide/resource-based-policies.md

Summary

Added InvokeAgentRuntimeCommand API operation to policy actions and authorization evaluation

Security assessment

Introduces new runtime command execution permission that could enable privilege escalation if misconfigured. Directly modifies access control policy documentation for a sensitive operation (shell command execution)

Diff

diff --git a/bedrock-agentcore/latest/devguide/resource-based-policies.md b/bedrock-agentcore/latest/devguide/resource-based-policies.md
index cfad973fb..329800666 100644
--- a//bedrock-agentcore/latest/devguide/resource-based-policies.md
+++ b//bedrock-agentcore/latest/devguide/resource-based-policies.md
@@ -87 +87 @@ Key principles:
-Agent endpoints are addressable access points to specific versions of an agent runtime. Each endpoint points to a particular version of the runtime configuration, with a DEFAULT endpoint automatically routing to the latest version. When authorizing runtime API operations such as `InvokeAgentRuntime`, AWS evaluates both identity-based and resource-based policies for both the agent runtime and the agent endpoint being invoked.
+Agent endpoints are addressable access points to specific versions of an agent runtime. Each endpoint points to a particular version of the runtime configuration, with a DEFAULT endpoint automatically routing to the latest version. When authorizing runtime API operations such as `InvokeAgentRuntime` and `InvokeAgentRuntimeCommand`, AWS evaluates both identity-based and resource-based policies for both the agent runtime and the agent endpoint being invoked.
@@ -191,0 +192,2 @@ The `Resource` field in the policy document must contain the exact ARN of the re
+  * `bedrock-agentcore:InvokeAgentRuntimeCommand` \- Execute a shell command in an active runtime session
+